How to eliminate security threats to payments on Xiaomi Redmi 9: step-by-step instructions 2026

Xiaomi Redmi 9 remains one of the most popular budget smartphones, but its owners often face risks when conducting mobile payments. Fraudsters exploit vulnerabilities in MIUI, forge payment pages and intercept SMS with confirmation codes. In this article, we will show you concrete steps to protect your finances, from basic settings to advanced methods of detecting attacks.

The problem is not the device itself, but a combination of factors: outdated firmware, careless attitude to application permissions, and the lack of two-factor authentication. For example, the FakeBank virus masquerading as legitimate banking applications stole data from more than 12,000 Xiaomi users in Russia in 2023, we will analyze how to disable vulnerable MIUI features that scammers use to steal money, and what tools will help track suspicious activity.

1. Checking the current security status: where to start

Before you make changes, evaluate the level of protection of your Redmi 9. Open Settings β†’ About Phone β†’ MIUI version and compare it with the latest updates on the official Xiaomi website. If the version is older than MIUI 14, your device is vulnerable to exploits closed in new patches.

Next, check the list of installed applications:

  • πŸ” Unknown sources: go to Settings β†’ Annexes β†’ Application management β†’ Special access β†’ Install unknown applications and disable permission for all browsers and instant messengers.
  • πŸ“± Suspicious programs: Delete apps with names like β€œQuick Payments,” β€œMobile Bank” +", "SMS Helper – They often mask Trojans.
  • πŸ”„ Play Market Updates: Open Google Play β†’ Profile β†’ Manage devices and make sure Redmi 9 is marked as "Certified."Device counterfeits block security updates.
πŸ“Š Have you ever experienced fraudulent payments on your smartphone?
Yes, the money was written off without my consent.
Yeah, but we managed to cancel the transaction.
No, but I got suspicious. SMS
No, never.

⚠️ Note: If there is com.android.securepay or similar services on the list of applications that you have not installed, this is a sign of infection. Immediately reset to factory settings (instruction in section 4).

2.Set up MIUI to protect payments: hidden options

MIUI contains built-in security tools that are disabled by default. Activate them:

  1. Block payment SMS: Go to Settings β†’ Passwords & Security β†’ Block messages and add bank numbers (900, 911, etc.) to the blacklist. This will prevent interception of confirmation codes.
  2. Ban screenshots in banking applications: In Settings β†’ Privacy β†’ Privacy Protection, enable the option β€œDisallow Screenshots” for SberBank Online, Tinkoff and other financial services.
  3. Background activity restriction: C Settings β†’ Battery and performance β†’ Background management set for all applications except system, Strictly Restricted mode. This will block the spyware from working.
Parameter MIUIRecommended valueWhy?
USB debuggingDisconnected.Prevents remote device management via ADB
Installation from unknown sourcesDisabled for all applicationsBlocks the installation of malicious APKs
Show password when enteringDisconnected.Protects against peeping behind your shoulder
Autofilling passwordsOnly for trusted applicationsEliminates data leakage through phishing forms

πŸ’‘

If your Redmi 9 suddenly starts to overheat when using banking applications, this is a sign of the miner or spyware. Check the active processes in Settings β†’ Applications β†’ Launched and forcibly stop suspicious ones.

3. Two-factor authentication: how to configure correctly

Normal. SMS-codes are unreliable – they are intercepted through vulnerabilities in the protocol SS7 Or SIM cards. Use hardware keys or specialized applications:

  • πŸ” Google Authenticator: Install from Play Market and link to bank accounts. Codes are generated locally, without being transmitted over the network.
  • πŸ“± MIUI Security App: Built-in Security (Shield icon) supports one-time password generation for Xiaomi account.
  • πŸ”‘ Physical tokens: Banks like Tinkoff or Alfa Bank issue USB-keys (like Rutoken) connect it through OTG-adapter.

For Google Authenticator:

1. Open a banking application (for example, SberBank Online).


2. Go to "Security Settings β†’ Two-factor authentication".




3. Select "Authenticator App" and scan the QR-code through Google Authenticator.




4. Save backup codes in a secure location (e.g., in Cashback Service β†’ Encrypted Notes).

⚠️ Warning: Never save two-factor authentication backup codes in Notes MIUI Fraudsters access them through phishing links masquerading as notifications from the bank.

Disabled. SMS-code|Linked to Google Authenticator or similar|Offline backup codes retained|The token’s operation is checked through OTG-->

4. Reset to factory settings: when necessary

If you suspect a virus infection (for example, after installing pirated apps or connecting to public Wi-Fi), do a full reset. On Redmi 9, this is done as follows:

  1. Back up your important data through Settings β†’ Additional β†’ Backup and Reset β†’ Local Backup (exclude banking apps!).
  2. Go to Settings β†’ About Phone β†’ Resetting β†’ Erase all data.
  3. Enter the pattern lock or PIN, confirm the action.
  4. After the reboot, do not restore data from the cloud – install the antivirus and check the system first.

On Redmi 9 with firmware older than MIUI 12.5, the reset does not remove malware from the /system partition. In this case, you need to flash through Fastboot from the official Xiaomi website.

What to do if the virus remains after resetting?
If you see suspicious activity again after the reset (advertising, redirecting to websites, SMS to paid numbers), then the virus is embedded in the firmware. In this case: 1. Download the official firmware for Redmi 9 (codename lancelot) from the MIUI Download site. 2. Install the Mi Flash Tool on your PC and connect the phone in Fastboot mode (press Power + Volume down when turned on). 3. Select the Clean All option and flush the device. This will remove all modifications, including viruses.

5.Phishing Protection: How to Recognize Fake Payment Pages

Fraudsters create copies of the websites of banks and payment systems, replacing only 1-2 characters in the address (for example, sberbank-online.ru instead of sberbank.ru). On Redmi 9 this is especially dangerous because of automatic redirection in the Mi Browser browser.

Signs of a phishing site:

  • 🌐 Address line: There is no lock icon πŸ”’ or the domain contains typos (tinkof.ru instead of tinkoff.ru).
  • πŸ“ Entry forms: Ask to enter PIN from the card, CVV password MI-Accounts (banks never require this!).
  • ⚑ Download speed: Fake pages often load slower due to hosting on cheap servers.

To block phishing on Redmi 9:

  1. Install a browser with phishing protection: Firefox Focus or Brave (they block known fraudulent sites).
  2. In Settings β†’ Applications β†’ Mi Browser, disable the option β€œOpen links by default”.
  3. Add a block to the host file of known phishing domains (root rights are required).

πŸ’‘

Even if the site looks identical to the original, always check the security certificate (click on the website). πŸ”’ Fraudsters often use self-signed certificates or pass them off as β€œverified” through fake certification authorities.

6.Transaction monitoring: how to track suspicious write-offs

Redmi 9 allows you to set up notifications for all payments, even if fraudsters try to hide them.

MethodHow to set upWhat's tracking
SMS-warningConnect the transaction information service in the bank (usually free of charge)All write-offs, including minor ones (e.g. subscriptions)
Push notificationsEnable in the banking application: Settings β†’ Notifications β†’ Card transactionsInstant Alerts on Geolocation Transactions
Email reportsSet up a weekly discharge in the bank’s personal accountAll transactions for the period, including hidden payments
Annex "My Bank"Install your bank’s official software and activate Operation ControlBlocking suspicious transactions on geodata

If you find an unauthorized write-off:

  1. Block the card immediately through a mobile bank or by the number on the back.
  2. Call the bank (use the number from the official website, not from SMS!).
  3. Write a fraud report – you have 24 hours to challenge the transaction.
  4. Check Redmi 9 for viruses with Malwarebytes or Dr.Web Light.

7. Additional measures: VPN, antivirus and hardware protection

For maximum safety:

  • πŸ›‘οΈ VPN: Use ProtonVPN or Windscribe when connecting to public Wi-Fi. Set up automatic turn on VPN In Settings β†’ Connections and sharing β†’ VPN.
  • 🦠 Antivirus: Install Bitdefender Mobile Security (there is a free version) and run a deep scan. Pay special attention to the folder /storage/emulated/0/Download β€” Trojans often hide there.
  • πŸ”Œ OTG-Blocker: Buy it USB-capacitor (stands) ~300β‚½) Connect your phone to other people’s devices only through it – this will prevent data transfer.

⚠️ Warning: Don't use antivirus software from unknown developers (like Super Cleaner or Virus Cleaner) many of them collect user data themselves, check the rating and downloads in the Play Market - reliable antivirus programs have at least 10 million installations.

πŸ’‘

Create a separate user in MIUI for payments: Settings β†’ System system β†’ Multiplayer mode. In this profile, install only banking applications and disable access to the service. SMS/So viruses from the main profile can't intercept the data.

FAQ: Frequent questions about payment security on Xiaomi Redmi 9

Can I use Face Unlock to confirm payments?
No. The face recognition technology on Redmi 9 uses only 2D-The camera is vulnerable to being tricked by the photo. PIN-code (at least 6 characters).
How to check if another person is connected to my phone MI-account?
Go to Settings. β†’ Xiaomi account β†’ Account management. If it doesn't show your email, the device is compromised. Do a factory reset and change the password from the MI-account on another device.
What if the error β€œInadequate rights” appears when paying?
This error occurs if: The banking application does not have the right to send SMS (check Settings β†’ Applications β†’ Permissions). Charge Saving mode is activated (turn it off in the notification curtain); Xposed Framework or other system modifications are installed (they block payment services); Restart the phone and repeat the operation. If the error persists, reinstall the banking application.
Can a fraudster write off money if they only know my card number?
Yes, but only in limited cases: For online payments (if not connected) 3D-Secure). To tie it to Apple. Pay/Google Payment (unless the bank requires confirmation of the SMS). To pay through services like Qiwi or YuMoney, where there is enough card number, activate the option β€œDisallow online payments without confirmation” at the bank and set a limit on transactions (for example, to protect yourself, 5 000β‚½ day-to-day).
How do I know if my Redmi 9 is infected with a payment virus?
Signs of infection: The phone spontaneously sends SMS to short numbers (check Message Log). The battery discharges in 2-3 hours without active use. In Settings β†’ Traffic you see suspicious activity (for example, transferring data in the background to unknown applications); Bank applications fly out or ask to re-enter data. If you notice even one sign, immediately turn off mobile Internet and Wi-Fi, then perform an antivirus check.